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Ku-Forward Service Overview 
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The diagram outlines the process 
and servers that host the Ku- 
Forward service. 

Ku Forward provides a secondary 
communication path that will allow 
Payload ground systems to 
communicate with their on-orbit 
Joint Station LAN (JSL) or Ethernet 
connected payloads via standard IP 
communication protocols 

♦ Primary communication 

(command) path is still S-Band 
commanding through the PL 
MDM with 1553 service to the 
Payload 

HOSC is developing 
capabilities/services (CR 13351) 
that will allow both the POIC Cadre 
and Payload Users access to 
devices connected to the onboard 
Payload LAN 
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User Applications- HPEG Session Status Ul 

♦ Overview 

♦ Primary User Interface (Ul) for EPC users 

♦ Displays list of authorized payloads and services to the user 

♦ Displays command system status to user 

♦ Displays forward/return link status to user 

♦ Allows user to request access to specific payload 

♦ Interfaces to HPEG Proxy Service on EPVT/PVT servers 

+ Implements PGUIDD interface 
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User Applications- HPEG Session Status Ul 
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Approved Destinations 


IPEKG IPEHG2 IPEHGA 

PEHG CONTROL 1 

PEHG CONTROL 2 

PEHG CONTROL A 


AVN 443 ENCODER 
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Start Session 


Proxy IP: xxx.xxxjrxxjotx 


Messages 


HPEG: Enabled j User: Enabled Ku Forward: AOS 


. j Ku Return: AOS 
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AVN 443 ENCODER ELC_EdgeRciuter_USLab 
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Stop Session 


Proxy IP: EEE-EEE-EEE-1 00 


Messages 


t£> 


2014 022:15:13:23 Session with AVN 443 ENCODER initialized {proxy IP: ggg.ggg.ggg.100) 


HPEG: Enabled User: Enabled j| Ku forward: AOS J Ku Return: AOS 
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User Applications - TReK HPEG Toolkit Utility 

► Overview 

♦ Primary User Interface (Ul) for TReK users 

♦ Displays list of authorized payloads and services to the user 

♦ Displays command system status to user 

♦ Displays forward/return link status to user 

♦ Allows user to request access to specific payload 

♦ Interfaces to HPEG Proxy Service on EPVT servers 

+ Implements PGUIDD interface 
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User Applications - TReK HPEG Toolkit Utility 
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User Applications - Start HPEG Session 


♦ Requesting a destination IP session 

♦ User selects a destination© 

♦ User select Start © 

♦ The HPEG Session Status Ul sends a 
request to the HPEG Proxy Service to 
“start” listening for packets to forward to 
the current tab’s destination 

♦ The HPEG Proxy Service will acquire a 
HPEG Proxy IP address from the 
available pool 

+ Acts as a proxy to the onboard destination 
+ Forwards Proxy IP to HPEG Session Status Ul 

♦ The HPEG Session Status Ul displays a 
the HPEG Proxy IP address to the user^ 
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EPC HPEG Session Status User Interface 

3 HPEG Session Status - ISSJN40:Sim. dpvtle (EHS lT.OJidleOsNO 
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TReK HPEG Toolkit Utility 
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Remote Desktop Connection 


User Applications - Start IP Session 

♦ User may use any 
COTS application 
that supports the 
authorized services 


Remote Desktop 

g) Connection 

Computer: ggg.ggg.ggg.lffl) 



M 

Category: 



S - Session 
j - Logging 
■ Terminal 
Keyboard 
Bell 

Features 
Window 
!•••• Appearance 
j- Behaviour 
Translation 
Selection 
Colours 
El - Connection 
Data 
Proxy 
Telnet 
j-- Rlogin 
$ SSH 
L - Serial 


Basic options for your PuTTY session 
Specify the destination you want to connect to 
Host Name (or IP address) Port 

ggg.ggg.ggg.100 22 

Connection type: 

0 Raw I ^ Telnet 0 FBogin a SSH 

Load, save or delete a stored session 
Saved Sessions 


0 Serial 


Default Settings 


□ose window on exit: 

0 Always 0 Never (§) Only on dean exit 


About 


Open 


Cancel 


: when you connect. 


Connect 


Help 


+ Connects to the 
onboard destination 
via the assigned 
Proxy IP and 
authorized ports 

4- Any number of 
sessions may be 
established through 
the provided proxy IP 
address 
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User Applications - Terminate IP Session 

♦ User selects Stop/ Terminate© 

+ The HPEG Proxy Service will 
stop forwarding packets to the 
session’s destination 

+ Assigned Proxy IP will 
be released to 
available pool 
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User Interfaces- HPEG Status 



EPC HPEG Session Status User Interface 



Message Area^^ 


TReK HPEG Toolkit Utility 


GMT 201401-21 19:57:13 ELC3_H: Successfully Initialized (0) 

GMT 201401-21 20:00:18 ELC3_H: Session Idle (0) 

GMT 201401-21 20:01:23 ELC3_H: User Requested {1) 

GMT 201401-21 20:07:30 Successfully sent request: to start: ELC3H 
GMT 201401-21 20:07:30 ELC3_H: Successfully Initialized (0) 


HPEG Active 


♦ Status 

♦ The user’s HPEG q 

session(s) status is 
provided to the user in the 
message area 

+ PGUIDD defined 

messages, as necessary 

+ Local messages 

♦ A status bar is provided for 
system/user status that ® 
affects all destinations 

+ User HPEG enablement 


r 


EPC HPEG Session Status User Interface 


m HPEG: Enabled ^ User Enabled 


Ku Forward: AOE 


j Ku Return: AOS 


+ HPEG enablement 
+ CSS enablement 
+ Ku Forward AOS/LOS 



TReK HPEG Toolkit Utility 


HPEG User: Enabled HPEG Commanding: Enabled Ku Forward: AOS Ku Return: AOS Increment: IN 40 Operational Mode: Test Idle Chedc: Enabled 


Enable 


Disable 
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User Applications - Idle Notification 

If no packets are sent or received within 30 minutes, the 
HPEG Proxy Service will send a message requesting 
confirmation the service is still “alive.” 


♦ HPEG Proxy Service will not check for idle time during LOS 

♦ Both EPC and TReK Uls will prompt user for confirmation 

♦ If the user wants to continue the service, the Ul will send a 
message to continue 

♦ If the user does not wish to continue the service, the Ul will 
send a message to terminate the service 

♦ If the user does not respond in one minute, the HPEG Proxy 
Service will terminate the session 

♦ Client may request to disable idle notification by sending a 
‘Disable Idle Check’ request® 

♦ Idle notification is not sent during LOS 


HPEG User: Enabled HPEG Commanding: Enabled Ku Forward: AOS Ku Return: AOS Increment: INHW Operational Mode: Test Idle Ched<: Enabled 


Enable 



Disable 
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HPEG Proxy Service 



Overview 

♦ Service that provides Internet Protocol access to a specific 
payload 

♦ Executes on EPVT/PVT servers 

♦ Two primary threads 

+ HPEG Session Provider 

-v- Interfaces to HPEG Session Status Ul and TReK HPEG Toolkit Utility 
-Y- Provides a list of authorized payloads and services 
-Y- Provides HPEG System and User status 
+ HPEG Packet Router 

•Y- One Packet Router per payload 

Forwards IP packets to HPEG Subsystem for uplink 
-Y- Forwards return IP packets to user 
-Y- Logs all packets 

♦ Note: The following slides reference the HOSC provided user 
interfaces as the client, but the client may be any application 
meeting the PGUIDD interface. 
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HPEG Proxy Service 

HPEG Session Provider 
♦ Receive ‘Start Session’ request from user 

+ Validate request 

-Y- HPEG Commanding is enabled 

-Y- Valid destination 

-y- User authorized for destination 

-Y- User hasn’t already started the service for the requested destination 
+ Retrieve proxy address and deliver to user 


♦ Sends connection terminated message to the user when: 

+ A request from the user to terminate a connection for a 
destination is received 

+ HPEG subsystem is disabled 
-Y- ALL sessions will be terminated 
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HPEG Proxy Service 

HPEG Packet Router 


♦ Provides listener for user’s IP session packets 

♦ Forward Packet Processing 

+ Receive the packet from user and Verify uplink criteria: 

A The following must be true 

4- If the IP packet contains a port, it must be an approved port 

4- Ku Forward is AOS 

4- User is enabled for HPEG commanding 

+ Translate packet address to onboard addressing and forward 
packet for uplink 

-Y- Packet Source with HPEG Onboard IP 
-Y- Packet Destination with Destination IP 


NASA MSFC 
Mission Operations Laboratory 





Page 1 6 

MSFC 


Paae 16 





Paae 17 


HPEG Proxy Service 

HPEG Packet Router (cont) 

♦ Return Packet Processing 

+ Translate packet addresses to ground addressing and send 
packet to user 

-Y- Packet Source with HPEG Proxy IP 
-Y- Packet Destination with User IP 

♦ Create a capture file for the IP packets 

-Y- IP session capture file contains forward and return traffic 

♦ Maintains the Idle Timer 

+ Idle notifications not sent during LOS 

♦ When a stop session request is received packet router stops 
listening for packets 
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HPEG Proxy Service 


♦ Logging 

♦ HPEG Session Provider 

+ Messages recorded in Message Handler Log 
4 User starts session 
4 User stops session 
4 Error messages 

4 Any other informational messages as needed 

♦ HPEG Packet Router 

+ Packet Capture 

4 Capture all IP packets to/from user 

4 Create a meta data file for the capture file 
4 SSH key, if available 
4 Role 

4 Login server 
4 Proxy IP Addresses 
4 Onboard IP Address 
4 User IP Address 
4 Destination IP Address 
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Packet Routing Example 
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Verification Status 


♦ Dry Run Test - MSFC/JSC-MCC/JSC-SDIL 

♦ Performed January 9-10, 2014 

♦ Objective 

+ Verify the end-to-end connectivity for the Ku-Forward 
implementation 

+ Perform configuration of ICU2, PEHG1 and ELCs by DMCs. 

+ Perform a series of tests to verify the HOSC Ku-Forward 
capability utilizing the user’s interface. 

♦ Summary 

+ All objectives necessary to test the assigned protocols for Ku- 
Forward phase 1 were met. 

-Y- Ping and RDP was successfully configured to connect to Express 
Laptops 

-Y- Ping was also able to get responses from PEHG controllers and 
IPEHGs 

-Y- HTTPS was tested with a file server 


♦ 


Formal Verification is January 27-31 , 2014 
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